mirror/UNIT3D-Community-Edition
1
0
Fork 0
mirror of https://github.com/HDInnovations/UNIT3D-Community-Edition.git synced 2026-02-11 14:09:31 -06:00
Code Issues Packages Projects Releases Wiki Activity
12,481 Commits 4 Branches 109 Tags
0356b4cd6da7815557f3bd2c1560ffd744eef7ff
Commit Graph

195 Commits

Author SHA1 Message Date
Roardom
ad716d7cc3 update: remove XSS cleaner and remove XSS vulnerabilities 
We've been mostly relying on the 3rd party xss cleaner to make sure user submitted content is clean. This PR fixes up any leftover holes in the bbcode parser that allow xss vulnerabilities, and as a result, the 3rd party library isn't needed anymore. It cleans responsibly by first, running `htmlspecialchars()` over the content, followed by sanitizing the untrusted urls and whitelisting their protocol.
 2025-01-20 02:52:42 +00:00
Roardom
ff5e30295a add: staff-configurable events with daily prizes 2024-10-15 08:20:13 +00:00
Roardom
3878bb85d7 update: add indexes to audits to speed up staff activity counts 
Speeds up the queries from 1.1 s to 75 ms.
 2024-09-27 07:39:25 +00:00
HDVinnie
428bf63910 add: base donation system 2024-09-12 13:03:38 -04:00
Roardom
8ae95f9713 fix: system users not included in conversation 
We need to include system users in the conversation, even if they are soft deleted in cron job, that way they show up in the private message list
 2024-08-28 05:15:13 +00:00
Roardom
5f28892153 add: password reset history logging 2024-08-17 15:05:47 +00:00
Roardom
872d28d9c0 fix: larastan relations 2024-08-09 07:33:56 +00:00
HDVinnie
7469a11ea1 add: #4006 
- closes #4006
 2024-07-28 21:18:09 -04:00
HDVinnie
3ad3bb992b PHP Style Change (Laravel Pint CI) 2024-07-19 03:43:14 +00:00
HDVinnie
8ad0097fc9 fix: HasFactory types 2024-07-18 23:42:13 -04:00
Roardom
62799be78a fix: cache null values for user settings/notifications/privacy relations 2024-07-06 07:49:47 +00:00
Roardom
8c08356fe1 fix: send system messages from system instead of user 2024-07-02 21:08:54 +00:00
HDVinnie
9182121ce7 Merge pull request #3937 from HDInnovations/PHPStan-Errors 
(Fix) PHPStan Errors
 2024-06-23 13:25:06 -04:00
HDVinnie
eddad86406 fix: phpstan errors 
- this commit tackles more phpstan errors from the baseline.
- the 2024_06_19_210338_update_colum_types.php migration will have more added to it. This PR is draft until more baaseline errors are closed.
 2024-06-19 21:19:02 -04:00
HDVinnie
c4cd52e23b fix: multiple bugs 
- adds laravel 11 casts support to phpstan https://github.com/larastan/larastan/blob/2.x/UPGRADE.md#upgrading-to-296-from-295
- fixes multiple bugs found by phpstan
- removes dead code in torrent filter trait
- ignores three new files in phpstan.neon temp until debugged for timeouts
 2024-06-19 13:43:59 -04:00
Roardom
c33376608b fix: properly remove receiver_id column from private_messages 2024-06-19 09:41:05 +00:00
Roardom
8b9b038701 fix: conversation creation 
Should use `sender_id`, not `user_id`. Also need to create conversations for all non-system pms.
 2024-06-15 01:55:03 +00:00
Roardom
cdb063d8e0 add: private message threads 2024-06-07 20:47:36 +00:00
Roardom
0e0fc3524f refactor: modularize system notifications and prevent replies 2024-06-07 14:08:23 +00:00
Roardom
d00475778b update: normalize user settings 
Use a 1-1 relation. Cache it indefinitely to reduce queries for every http request. This will make it much easier to add additional user settings for various site features without sacrificing clean code or performance.
 2024-05-26 10:42:00 +00:00
Roardom
683ba9077a remove: unused columns on users table 2024-05-26 04:40:57 +00:00
Roardom
12903f64ac fix: strict type issues 
Don't pass null into functions that don't accept null.
 2024-05-23 17:40:16 +00:00
Roardom
b1873bfa27 fix: decimal docblocks 
MySQL decimal column type is casted to PHP string type by default. Let's also make sure it only has 2 decimal places while we're at it.
 2024-05-23 15:46:31 +00:00
Roardom
2e57262e97 fix: strict types phpstan errors 2024-05-23 15:38:35 +00:00
Roardom
b86475a732 add: strict types to all files 2024-05-23 13:58:29 +00:00
HDVinnie
51fa8ec46b update: laravel 
- Laravel 11 introduces a new default application structure with fewer default files. Namely, new Laravel applications contain fewer service providers, middleware, and configuration files.

However, it is not recommend that Laravel 10 applications upgrading to Laravel 11 attempt to migrate their application structure, as Laravel 11 has been carefully tuned to also support the Laravel 10 application structure.
 2024-04-23 16:06:37 -04:00
Roardom
98c32a38f3 update: remove request bon transactions 
This data is already stored in the requests and bounty tables. At this point, the name and comment fields are duplicates of each other and don't need to both be kept.
 2024-02-26 09:33:33 +00:00
Roardom
a37f414145 update: normalize post tips and torrent tips 2024-02-26 09:33:32 +00:00
Roardom
537ad1e831 refactor: normalize user gifts 2024-02-26 09:33:08 +00:00
Roardom
580da7022d refactor: rename permissions to forum_permissions 2024-02-25 00:19:04 +00:00
Roardom
c3c95c2d41 update: allow users to be part of multiple internal groups 2024-02-23 23:57:12 +00:00
Roardom
7490a7a39e refactor: forum notification triggers 2024-02-13 22:50:57 +00:00
HDVinnie
8a03bec818 add: model docblocks 
- this resolves some larastan property issues but in return has revealed quite a few issues with our castings and such. baseline has been regenerated so we can work through them. The properties in docblocks are in order and match everything in DB schema wise.
 2024-02-07 16:39:43 -05:00
Roardom
c6f220bf84 add: email logging 
Don't log the email addresses themselves to maintain user privacy.
 2024-01-21 10:59:26 +00:00
HDVinnie
568a422cad security: chatbox data 2023-12-30 10:04:35 -05:00
Roardom
1221b6809b add: apikey logging 2023-11-16 18:27:49 +00:00
Roardom
17867ac777 add: rsskey logging 2023-11-16 09:53:56 +00:00
Roardom
cbfd7c0739 add: passkey logging 2023-11-13 08:18:39 +00:00
Roardom
1fc49fd2df update: public views 2023-11-12 23:25:28 +00:00
HDVinnie
b4d4a4f14e Merge pull request #2911 from HDInnovations/fortify 
(Update) Use fortify for authentication
 2023-11-11 20:58:46 -05:00
HDVinnie
707192e7a4 fix: can_chat casting 2023-11-10 21:36:45 -05:00
HDVinnie
033e86149d PHP Style Change (Laravel Pint CI) 2023-11-08 00:34:31 +00:00
HDVinnie
3f03214e39 PHP Style Change (Laravel Pint CI) 2023-11-07 23:54:38 +00:00
HDVinnie
c2e66bbb12 Merge branch '7.x.x' into fortify 2023-11-07 18:22:10 -05:00
HDVinnie
b3f0386149 cleanup: pt.1 2023-10-12 22:30:52 -04:00
Roardom
f2066f4441 fix: add type hints to models 2023-08-26 07:43:07 +00:00
Roardom
69d4ecdecb fix: user hidden being overridden by base model 2023-08-25 09:13:57 +00:00
Roardom
8127734979 fix: various larastan command issues 2023-08-25 07:58:38 +00:00
Roardom
6e6f551367 fix: various larastan livewire issues 2023-08-25 06:45:41 +00:00
Roardom
435dab893e add: user application to their profile 2023-08-23 09:57:28 +00:00